"It has been found that several libvirt API calls (virNodeDeviceDettach,
virNodeDeviceReset, virDomainRevertToSnapshot, virDomainSnapshotDelete) did not
honour read-only connection. Remote attacker could use this flaw to crash the
host server (DoS)."
Reference:
https://bugzilla.redhat.com/show_bug.cgi?id=683650
CVE-2011-1146